Legal claims defining the scope of protection, as filed with the USPTO.
1. A method performed by a first software defined wide area network (SD-WAN) edge router communicably coupled to a public network, the method comprising: receiving a transport location (TLOC)-extension configuration for a known interface of the first edge router; detecting a second edge router attempting to connect to the known interface of the first edge router; and transmitting, to the second edge router, configuration information for the second edge router so that the second edge router is able to communicate with the public network through a TLOC-extension with the first edge router, wherein the configuration information for the second edge router comprises TLOC-extension information for establishing a TLOC-extension between the first and second edge routers.
2. The method of claim 1 , further comprising upon detecting the second edge router attempting to connect to the known interface of the first edge router, performing authentication on the second edge router to verify the second edge router is authorized to connect to the first edge router.
3. The method of claim 2 , wherein the authentication comprises 802.1x port-based authentication.
4. The method of claim 1 , wherein receiving the TLOC-extension configuration for the known interface comprises receiving the TLOC-extension configuration from a SD-WAN controller.
5. A method performed by a second software defined wide area network (SD-WAN) edge router, the method comprising: connecting to a known interface of a first SD-WAN edge router that is communicably coupled to a public network; receiving, from the first edge router, configuration information for a transport location (TLOC)-extension with the first edge router; establishing the TLOC-extension with the first edge router; and receiving device configuration information from the public network via the TLOC-extension.
6. The method of claim 5 , wherein connecting to the known interface of the first edge router comprises performing authentication to verify the second edge router is authorized to connect to the first edge router.
7. The method of claim 6 , wherein the authentication comprises 802.1x port-based authentication.
8. The method of claim 5 , wherein receiving the device configuration information from the public network comprises receiving plug-and-play (PnP) information or zero touch provisioning (ZTP) information.
9. The method of claim 5 , further comprising receiving an identifier of the known interface from a SD-WAN controller.
10. A first software defined wide area network (SD-WAN) edge router communicably coupled to a public network, the first edge router comprising: one or more network interfaces; a memory comprising instructions; and a hardware processor; wherein the edge router, when executing the instructions at the hardware processor, is configured to: receive a transport location (TLOC)-extension configuration for a known interface of the first edge router; detect a second edge router attempting to connect to the known interface of the first edge router; and transmit, to the second edge router, configuration information for the second edge router so that the second edge router is able to communicate with the public network through a TLOC-extension with the first edge router, wherein the configuration information for the second edge router comprises TLOC-extension information for establishing a TLOC-extension between the first and second edge routers.
11. The edge router of claim 10 , further operable to, upon detecting the second edge router attempting to connect to the known interface of the first edge router, perform authentication on the second edge router to verify the second edge router is authorized to connect to the first edge router.
12. The edge router of claim 11 , wherein the authentication comprises 802.1x port-based authentication.
13. The edge router of claim 10 , wherein the hardware processor is configured to receive the TLOC-extension configuration for the known interface by receiving the TLOC-extension configuration from a SD-WAN controller.
14. A second software defined wide area network (SD-WAN) edge router, the second edge router comprising: one or more network interfaces; a memory comprising instructions; and a hardware processor; wherein the edge router, when executing the instructions at the hardware processor, is configured to: connect to a known interface of a first SD-WAN edge router that is communicably coupled to a public network; receive, from the first edge router, configuration information for a transport location (TLOC)-extension with the first edge router; establish the TLOC-extension with the first edge router; and receive device configuration information from the public network via the TLOC-extension.
15. The edge router of claim 14 , wherein the hardware processor is further configured to connect to the known interface of the first edge router by performing authentication to verify the second edge router is authorized to connect to the first edge router.
16. The edge router of claim 15 , wherein the authentication comprises 802.1x port-based authentication.
17. The edge router of claim 14 , wherein the hardware processor is configured to receive the device configuration information from the public network by receiving plug-and-play (PnP) information or zero touch provisioning (ZTP) information.
18. The edge router of claim 14 , the hardware processor further configured to receive an identifier of the known interface from a SD-WAN controller.
Unknown
February 22, 2022
Browse 5M+ US patents with plain-English claim translations and AI-generated analysis.